Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

poppassd(8) [debian man page]

POPPASSD(8)															       POPPASSD(8)

NAME

       poppassd - Password change server for Eudora and NUPOP mail clients

DESCRIPTION

       poppassd  runs  from  inetd  and listens on TCP port 106 by default.  Its sole purpose in life is to engage in short FTP-like conversations
       from client applications and execute (or deny) remote password changes via the PAM facilities configured in /etc/pam.d/poppassd.  The  con-
       versation looks something like this:

	      200 poppassd v1.8.4 hello, who are you?
	      user adconrad
	      200 Your password please.
	      pass foo
	      200 Your new password please.
	      newpass bar
	      200 Password changed, thank-you.
	      quit
	      200 Bye.

       As can be seen from the example above, unencrypted passwords are transmitted over the network.  Because of this, it is recommended that you
       use this daemon only for local loopback password changing (for instance, from Perl, Python, or PHP web applications on the same server) and
       block all non-local access to port 106, either via tcpwrappers (/etc/hosts.deny) or with appropriate firewall rules.

       If  sending  unencrypted  passwords  over  the  wire  doesn't  bug  you	terribly much (as in the case of an ISP with hundreds of POP3 mail
       accounts), this daemon can provide a simple way for some of your clients (those running mail clients that actually support  this  protocol)
       to easily change their passwords.

FILES

       /etc/pam.d/poppassd
	      Contains	the  PAM  configuration for poppassd.  By default on Debian, it merely includes the common-auth and common-password files,
	      which should work in most cases.	If this doesn't cut it for your site, tailor to suit.

SEE ALSO

       pam(7), inetd(8), hosts.deny(5)

AUTHOR

       This manual page was written by Adam Conrad <adconrad@0c3.net> for the Debian operating system.

Debian								   19 March 2004						       POPPASSD(8)

Check Out this Related Man Page

SYSTEM-AUTH-AC(5)						File Formats Manual						 SYSTEM-AUTH-AC(5)

NAME

       system-auth-ac,	password-auth-ac,  smartcard-auth-ac, fingerprint-auth-ac, postlogin-ac - Common configuration files for PAMified services
       written by authconfig(8)

SYNOPSIS

       /etc/pam.d/system-auth-ac

DESCRIPTION

       The purpose of this configuration file is to provide common configuration file  for  all  applications  and  service  daemons  calling  PAM
       library.

       The system-auth configuration file is included from all individual service configuration files with the help of the include directive. When
       authconfig(8) writes the system PAM configuration file it replaces the default system-auth file with a symlink pointing	to  system-auth-ac
       and writes the configuration to this file. The symlink is not changed on subsequent configuration changes even if it points elsewhere. This
       allows system administrators to override the configuration written by authconfig.

       The  authconfig	now  writes  the  authentication  modules  also  into  additional  PAM	configuration  files  /etc/pam.d/password-auth-ac,
       /etc/pam.d/smartcard-auth-ac, and /etc/pam.d/fingerprint-auth-ac.  These configuration files contain only modules which perform authentica-
       tion with the respective kinds of authentication tokens.  For example /etc/pam.d/smartcard-auth[-ac] will not contain pam_unix and pam_ldap
       modules and /etc/pam.d/password-auth[-ac] will not contain pam_pkcs11 and pam_fprintd modules.

       The  file  /etc/pam.d/postlogin-ac  contains  common services to be invoked after login. An example can be a module that encrypts an user's
       filesystem or user's keyring and is decrypted by his password.

       The PAM configuration files of services which are accessed by remote connections such as sshd or ftpd now include the  /etc/pam.d/password-
       auth configuration file instead of /etc/pam.d/system-auth.

EXAMPLE

       Configure  system  to  use  pam_tally2  for  configuration  of maximum number of failed logins. Also call pam_access to verify if access is
       allowed.

       Make system-auth symlink point to system-auth-local which contains:

       auth	       requisite       pam_access.so
       auth	       requisite       pam_tally2.so deny=3 lock_time=30 
					     unlock_time=3600
       auth	       include	       system-auth-ac
       account	       required        pam_tally2.so
       account	       include	       system-auth-ac
       password        include	       system-auth-ac
       session	       include	       system-auth-ac

BUGS

       None known.

SEE ALSO

       authconfig(8), authconfig-gtk(8), pam(8), system-auth(5)

Red Hat, Inc.							   2010 March 31						 SYSTEM-AUTH-AC(5)
Man Page